ASB-A-179338675
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-179338675.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-179338675
- Aliases
-
- A-179338675
- CVE-2021-0704
- Published
- 2021-12-01T00:00:00Z
- Modified
- 2025-10-29T14:58:58.432070Z
- Summary
- [none]
- Details
-
In createNoCredentialsPermissionNotification and related functions of AccountManagerService.java, there is a possible way to retrieve accounts from the device without permissions due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android / platform/frameworks/base
Package
Ecosystem specific
{
"types": [
"ID"
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779"
],
"vanir_signatures": [
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
"target": {
"function": "getCredentialPermissionNotificationId",
"file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
},
"deprecated": false,
"id": "ASB-A-179338675-1aba6102",
"signature_version": "v1",
"digest": {
"length": 675.0,
"function_hash": "63344495078565705575570774399620073325"
},
"signature_type": "Function"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
"target": {
"function": "createNoCredentialsPermissionNotification",
"file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
},
"deprecated": false,
"id": "ASB-A-179338675-55c1d0a6",
"signature_version": "v1",
"digest": {
"length": 1140.0,
"function_hash": "13955884187775680452074247685830298299"
},
"signature_type": "Function"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
"target": {
"function": "cancelAccountAccessRequestNotificationIfNeeded",
"file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
},
"deprecated": false,
"id": "ASB-A-179338675-77aadba8",
"signature_version": "v1",
"digest": {
"length": 288.0,
"function_hash": "307051170335423403625995541990461685265"
},
"signature_type": "Function"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
"target": {
"file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
},
"deprecated": false,
"id": "ASB-A-179338675-87908f8c",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"163192342974377152570748212987128057417",
"22536596362231034706818993951376135422",
"118745096072953635828624464550044468726",
"34877321948437329702879665358890462741",
"32909206349284035137301982068806649775",
"66018423483605967277575008754118635664",
"75617253890838800580423688036835732869",
"318496622784484702645689058493886502516",
"286045575951711842270786390741141769759",
"269835483600688645271061730841538456826",
"65090194467229542279066703150103838236",
"205939095187475124984644159056928354449",
"84516931391985999388513136331065465072",
"287760905822221236413637403731432114516",
"281401285350230527246651408033674429643",
"75333331059831584579307336761417834222",
"89605061369020268649647604619435640331",
"16769430245374382523840380980960032915",
"243992805329677801353898343829907170815",
"200000965947859984963851073412833473112",
"213738648577702954548876568284062043058"
]
},
"signature_type": "Line"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
"target": {
"function": "newRequestAccountAccessIntent",
"file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
},
"deprecated": false,
"id": "ASB-A-179338675-87ff2867",
"signature_version": "v1",
"digest": {
"length": 986.0,
"function_hash": "102001159819944637002872403145654094347"
},
"signature_type": "Function"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
"target": {
"function": "handleAuthenticatorResponse",
"file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
},
"deprecated": false,
"id": "ASB-A-179338675-c3834776",
"signature_version": "v1",
"digest": {
"length": 341.0,
"function_hash": "162839267298597953049593036352953645864"
},
"signature_type": "Function"
}
],
"severity": "High",
"spl": "2021-12-01"
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"types": [
"ID"
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
"https://android.googlesource.com/platform/frameworks/base/+/3520f7482aef0bdb78cc9c3cc2a2e1f6915a6462"
],
"vanir_signatures": [
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
"target": {
"function": "newRequestAccountAccessIntent",
"file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
},
"deprecated": false,
"id": "ASB-A-179338675-25e01c54",
"signature_version": "v1",
"digest": {
"length": 986.0,
"function_hash": "102001159819944637002872403145654094347"
},
"signature_type": "Function"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
"target": {
"file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
},
"deprecated": false,
"id": "ASB-A-179338675-333aaede",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"163192342974377152570748212987128057417",
"22536596362231034706818993951376135422",
"118745096072953635828624464550044468726",
"34877321948437329702879665358890462741",
"32909206349284035137301982068806649775",
"66018423483605967277575008754118635664",
"75617253890838800580423688036835732869",
"318496622784484702645689058493886502516",
"286045575951711842270786390741141769759",
"269835483600688645271061730841538456826",
"65090194467229542279066703150103838236",
"205939095187475124984644159056928354449",
"84516931391985999388513136331065465072",
"287760905822221236413637403731432114516",
"281401285350230527246651408033674429643",
"75333331059831584579307336761417834222",
"89605061369020268649647604619435640331",
"16769430245374382523840380980960032915",
"243992805329677801353898343829907170815",
"200000965947859984963851073412833473112",
"213738648577702954548876568284062043058"
]
},
"signature_type": "Line"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
"target": {
"function": "cancelAccountAccessRequestNotificationIfNeeded",
"file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
},
"deprecated": false,
"id": "ASB-A-179338675-3c7362f5",
"signature_version": "v1",
"digest": {
"length": 288.0,
"function_hash": "307051170335423403625995541990461685265"
},
"signature_type": "Function"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
"target": {
"function": "handleAuthenticatorResponse",
"file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
},
"deprecated": false,
"id": "ASB-A-179338675-81bea809",
"signature_version": "v1",
"digest": {
"length": 341.0,
"function_hash": "162839267298597953049593036352953645864"
},
"signature_type": "Function"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
"target": {
"function": "createNoCredentialsPermissionNotification",
"file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
},
"deprecated": false,
"id": "ASB-A-179338675-8e029192",
"signature_version": "v1",
"digest": {
"length": 1140.0,
"function_hash": "13955884187775680452074247685830298299"
},
"signature_type": "Function"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
"target": {
"function": "getCredentialPermissionNotificationId",
"file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
},
"deprecated": false,
"id": "ASB-A-179338675-e10aaa92",
"signature_version": "v1",
"digest": {
"length": 675.0,
"function_hash": "63344495078565705575570774399620073325"
},
"signature_type": "Function"
}
],
"severity": "High",
"spl": "2021-12-01"
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"types": [
"ID"
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779"
],
"vanir_signatures": [
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
"target": {
"function": "cancelAccountAccessRequestNotificationIfNeeded",
"file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
},
"deprecated": false,
"id": "ASB-A-179338675-263d7e71",
"signature_version": "v1",
"digest": {
"length": 288.0,
"function_hash": "307051170335423403625995541990461685265"
},
"signature_type": "Function"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
"target": {
"function": "getCredentialPermissionNotificationId",
"file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
},
"deprecated": false,
"id": "ASB-A-179338675-2976d879",
"signature_version": "v1",
"digest": {
"length": 675.0,
"function_hash": "63344495078565705575570774399620073325"
},
"signature_type": "Function"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
"target": {
"function": "handleAuthenticatorResponse",
"file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
},
"deprecated": false,
"id": "ASB-A-179338675-41700d39",
"signature_version": "v1",
"digest": {
"length": 341.0,
"function_hash": "162839267298597953049593036352953645864"
},
"signature_type": "Function"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
"target": {
"function": "newRequestAccountAccessIntent",
"file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
},
"deprecated": false,
"id": "ASB-A-179338675-4396c2f3",
"signature_version": "v1",
"digest": {
"length": 986.0,
"function_hash": "102001159819944637002872403145654094347"
},
"signature_type": "Function"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
"target": {
"function": "createNoCredentialsPermissionNotification",
"file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
},
"deprecated": false,
"id": "ASB-A-179338675-b2adfced",
"signature_version": "v1",
"digest": {
"length": 1140.0,
"function_hash": "13955884187775680452074247685830298299"
},
"signature_type": "Function"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/26de0c231ffb9fd8d22e80ca120c766c26276779",
"target": {
"file": "services/core/java/com/android/server/accounts/AccountManagerService.java"
},
"deprecated": false,
"id": "ASB-A-179338675-bf773afe",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"163192342974377152570748212987128057417",
"22536596362231034706818993951376135422",
"118745096072953635828624464550044468726",
"34877321948437329702879665358890462741",
"32909206349284035137301982068806649775",
"66018423483605967277575008754118635664",
"75617253890838800580423688036835732869",
"318496622784484702645689058493886502516",
"286045575951711842270786390741141769759",
"269835483600688645271061730841538456826",
"65090194467229542279066703150103838236",
"205939095187475124984644159056928354449",
"84516931391985999388513136331065465072",
"287760905822221236413637403731432114516",
"281401285350230527246651408033674429643",
"75333331059831584579307336761417834222",
"89605061369020268649647604619435640331",
"16769430245374382523840380980960032915",
"243992805329677801353898343829907170815",
"200000965947859984963851073412833473112",
"213738648577702954548876568284062043058"
]
},
"signature_type": "Line"
}
],
"severity": "High",
"spl": "2021-12-01"
}